Objective

The intent of this document is to describe the steps involved in integrating Micro Focus Desktop Containers (MFDC) –  ZENworks product over SSL.  The assumption is ZENworks server purchased with ZENworks Asset Management License and using Self-Signed certificate/external CA certificate.  This integration will help in capturing the network software usage of MFDC applications streamed from different devices on ZENworks server's console.

Pre-requisites

• • MFDC Server is up and running on supported Windows Server Class machine.

• • ZENworks server is up and running and is configured with Self Signed Certificate / external CA Certificate.

ZENworks server with Self Signed Certificate

Things to be done on the ZENworks Server

• • Download the CA Certificate from the following path considering ZENworks is installed:
    
    
    • • on Linux machine: /etc/opt/novell/zenworks/security
    
    
    • • on Windows machine: C:\Program Files (x86)\Novell\ZENworks\conf\security <or which ever the path installed>
    
    
    

• • Copy and paste ca.der file to MFDC Server

Things to be done on the MFDC Server

Install this certificate by double clicking on the ca.der file.  Refer to the following steps and screenshots:

Step 1: double click on ca.der.  As this certificate isn’t trusted, it needs to be trusted and added in the trust store of the Local computer.  Click on Install Certificate…



Step 2: Select Current User and click on Next.



Step 3: Select Place all certificates in the following store and click on Browse.



Step 4: Enable Show physical stores so that we can see the expand button on Trusted Root Certification Authorities. Now select Local Computer on Trusted Root Certification Authorities and click on OK and then Next.



Step 5:  Click on Finish.



ZENworks ca.der certificate is now successfully imported to MFDC server. Click on OK.



Step 6: Goto Run -> type certmgr.msc -> expand Trusted Root Certification Authorities -> click on Certificates.  Under Issued to on the right side, we can see the new certificate imported.



Step 7: Launch MFDC server’s admin portal, navigate to the ADMIN page, click on ‘Manage ZENworks Asset Management’ against ZENworks Asset Management.  Enable the Enabled button and against Server filed enter the ZENwork server’s IP or Hostname with complete DNS.  Ensure the IP provided is resolved by the DNS Server by using nslookup <IP address> command. Save the changes after configuring the ZENWorks Server IP/DNS name over SSL. (https)



Step 8: Restart the MFDC Services. (net stop mfdc followed by net start mfdc)



Stream the MFDC application from any device. Wif will be uploaded successfully to the ZENworks Server.

ZENworks server with External CA Certificate

Things to be done on the ZENworks Server

• • Download the CA Certificate from following path considering ZENworks is installed:
    
    
    • • on Linux machine: /etc/opt/novell/zenworks/security
    
    
    • • on Windows machine: C:\Program Files (x86)\Novell\ZENworks\conf\security <or which ever the path installed>
    
    
    

• • Copy ca.der file.

• • Paste the file on a server where MFDC Server is installed.

Things to be done to import ROOT CA of eDirectory:

Step 1: Login to iManager with eDirectory credentials.

Step 2: Navigate to Server Certificates under NetIQ Certificate Access in Roles and Tasks.



Step 3: Export the server certificate by providing a password.



Step 4: Download the server certificate. Copy the file to some location.



Now copy both the ZENworks server’s and eDirectory server’s certificates to the MFDC server.

Things to be done on the MFDC Server

Install both the ZENworks server's as well as eDirectory server’s certificates on MFDC server.  Refer to steps (Step 1 to Step under ZENworks server with Self Signed Certificate for the same.

Once both of the certificates are successfully imported installed users will be able to stream the MFDC application from any device.  Wif will be uploaded successfully to the ZENworks Server.

Conclusion:

This integration helps in capturing the network software usage of MFDC applications streamed from different devices on ZENworks servers console.